Yo Hal!
On Tue, 26 May 2020 18:23:55 -0700
Hal Murray via devel wrote:
> I was thinking of putting the individual lists in ntpd/seccomp/
> with something like
> #include "seccomp/foo.c"
> in ntp_sandbox.
Why not just load a text file at runtime during startup?
seccomp does not protect agains
e...@thyrsus.com said:
>> If yes, I'll need some help to work out the details.
> Aaarrgghhh. It;s a huge pain in the ass and I wish it weren't interesting.
> But given our mission statememnnt, it has to be.
OK. Let's discuss how to do it.
I was thinking of putting the individual lists in ntp
Hal Murray via devel :
>
> I've been experimenting with some code to allow custom scccomp lists.
>
> The idea is to replace the --enable-seccomp configure option with
> --enable-seccomp=foo
> and ntp_sandbox would include syscomp/foo.c which would be a list of syscalls
> used by this system.
>
Off-list Gary referred to a fix being in gpsd 3.20 (released Dec 31,
2019). I saw the note about "Convert all timestamp_t to timespec_t", but
can't tell if that is involved in the potential fix. Mike was running GPSD
"git head from ~2 months ago", which is later than 3.20.
I can't tell whether t
Yo Steven!
On Tue, 26 May 2020 11:37:53 -0500
Steven Sommars via devel wrote:
> Any similar observations? Known problems ?
This was caused by a bug in one version of gpsd. New versions of
gpsd do not have that bug. The exact bug was not found, instead the
entire way gpsd keeps time was change
> Recently I noticed such an error from khronos.mikieboy.net, which is operated
> by Michael Simpson. Mike has been involved in ntpsec and is on this list, so
> I'm taking this opportunity to investigate the issue.
Mike: Do you have log files from then? (May 22)
If so, please save them and/or
I look for NTP anomalies, particularly those from stratum 1 servers. One
recurring theme is a server that is briefly in error by an integral number
of seconds. Recently I noticed such an error from khronos.mikieboy.net,
which is operated by Michael Simpson. Mike has been involved in ntpsec and
i
